npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

picovolt

v0.12.0

Published

PicoVolt (PVDB): a polymorphic embedded database engine in Rust.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

minije2021minije2021

Keywords

databaseembeddedstorage-enginemvcccolumnar

Readme

PicoVolt (PVDB)

CI Version License: Apache-2.0 Status: experimental GitHub stars

PicoVolt is an embedded database engine written from scratch in Rust. It is experimental software. It has not been audited or hardened for production, so use it to learn from and prototype with rather than to store data you cannot lose.

If PicoVolt is useful to you, consider starring the repository on GitHub. It is the simplest way to help others discover the project.

The engine decouples query logic from storage representation through a Virtualization Layer Engine (VLE) that shifts between two on-disk shapes:

  • Development mode: a .pv/ workspace of mutable, append-only chunk files plus a content-addressed blob store, friendly to git and code review.
  • Production mode: a single contiguous, memory-mappable .pvdb file produced by pv_bake().

Pages are chameleon. Hot data lands in a slotted row layout for O(1) appends, and idle pages can be transposed into a packed columnar layout for compression and cache efficiency.

Status

The engine is built out across four phases, all implemented, with 103 unit and integration tests plus doctests passing and a clean cargo clippy -D warnings on Linux and Windows. Changes are tracked in CHANGELOG.md.

| Phase | Scope | Status | |-------|-------|--------| | 1 | Core memory layouts and error taxonomy | Done | | 2 | Page engine, CAS dedup, compression, VLE router | Done | | 3 | MVCC and snapshot isolation, WASM runtime | Done | | 4 | Public surface (pv_open_dev / pv_open_prod / query / pv_bake) | Done |

Module map

| Module | Responsibility | |--------|----------------| | core/types.rs | constants, ids, PageType, RecordEnvelope, page and file headers (explicit little-endian codecs) | | core/errors.rs | unified PvError and ComplianceError | | core/value.rs | dynamically-typed Value and Row | | storage/page.rs | slotted row page (O(1) append), chain links, columnar transposition | | storage/cache.rs | bounded LRU buffer pool (enables larger-than-RAM reads) | | storage/cas.rs | BLAKE3 content-addressable dedup (memory, dev-files, mmap) | | storage/compress.rs | Delta-Z, LEB128 varints, dictionary bit-packing | | storage/index.rs | in-memory ordered secondary index (value to record addresses; point and range) | | storage/record.rs | row and record-body serialization with CAS interception | | storage/vle.rs | dev directory store, prod mmap monolith, bake | | engine/mvcc.rs | transaction clock and snapshot visibility | | engine/wasm.rs | sandboxed wasmi extension runtime and the WasmExec backend trait | | engine/interp.rs | pv-wasm: a from-scratch WASM interpreter (integer subset) | | engine/query.rs | SQL front-end (CREATE/INSERT/UPDATE/DELETE/DROP, SELECT with projection, AS aliases, DISTINCT, aggregates, GROUP BY/HAVING, WHERE predicates incl. IN/BETWEEN/IS NULL/LIKE, BEFORE, multi-column ORDER BY, LIMIT) | | engine/compliance.rs | optional, app-driven usage-policy hook (not a license requirement) | | db.rs | the Database surface that ties it together | | ffi.rs | C ABI (the capi feature): a panic-safe, C-callable surface wrapping the engine for Go, Python, and C bindings |

Engineering notes

  • Explicit little-endian codecs for every on-disk structure, instead of casting #[repr(C)] structs, so the file format stays portable and its byte offsets are exact.
  • Two interchangeable WASM backends. The default is the wasmi interpreter (vetted, full WASM). Alongside it, pv-wasm (engine/interp.rs) is a from-scratch interpreter: a hand-written binary decoder and structured-control stack machine covering the i32 and i64 integer subset. Both implement the WasmExec trait, and a differential test checks pv-wasm against wasmi to keep it honest. Floats, tables, globals, imports, SIMD, and br_table are out of scope for pv-wasm and are rejected rather than mis-run.
  • Page-backed engine. Tables are append-only chains of row pages, each header linking to the next. Inserts append to a tail page and write only that page plus an O(tables) manifest, so autocommit is O(1) per insert rather than a whole-table rewrite. Reads stream through a bounded buffer pool (storage/cache.rs), so datasets need not fit in RAM, and opt-in ordered indexes (storage/index.rs) turn WHERE col = value into a point lookup and range comparisons such as WHERE col > v into an ordered scan rather than a full scan.
  • Selectable durability. Database::set_durability(Durability::Sync) makes each flush fsync the data and commit the manifest atomically (write to a temp file, fsync, then rename). The default Fast mode uses the OS cache only: fast and durable on a clean exit, but not power-loss-safe.
  • Hardened against untrusted input. Opening a .pvdb or workspace, or running a WASM module, validates manifest hashes (no path traversal), bounds-checks CAS offsets and page chains (no out-of-bounds reads or infinite loops on a crafted file), and caps WASM resource counts. The decoders are fuzzed (a cross-platform fuzz-lite test and a fuzz/ cargo-fuzz crate), and cargo audit reports no advisories. Both run in CI. See SECURITY.md.

Build

cargo build
cargo test

Examples and benchmarks

cargo run --release --example notes    # a small notes app: CRUD, edit history,
                                       # time-travel, CAS dedup, publish (bake)
cargo run --release --example repl     # interactive SQL shell (pvsql)
cargo run --release --example bench    # evaluation harness across modes and workloads

SQL supported: CREATE TABLE, CREATE INDEX ON t (col), INSERT, UPDATE ... SET ... WHERE, DELETE ... WHERE, DROP TABLE, and SELECT [DISTINCT] {* | col [AS alias], ... | COUNT/SUM/MIN/MAX/AVG(...) [AS alias]} FROM t [WHERE <pred>] [GROUP BY cols] [HAVING <pred>] [BEFORE tx] [ORDER BY col [ASC|DESC], ...] [LIMIT n], where <pred> combines col <op> value (=, !=, <, <=, >, >=, LIKE, NOT LIKE), col [NOT] IN (...), col [NOT] BETWEEN a AND b, and col IS [NOT] NULL with AND, OR, and parentheses. Integer and decimal values compare by magnitude. Durability is selectable via Database::set_durability (Fast OS-cache default, or crash-safe Sync with fsync and an atomic manifest).

Measured results and the methodology are in BENCHMARKS.md. In short, PicoVolt is a page-backed engine with O(1) durable appends (autocommit around 33k rows/s, linear), larger-than-RAM reads through a bounded buffer pool (a 667-page dataset serves from a 16-page pool), ordered secondary indexes (point lookups roughly 11,000 times faster than a scan, plus range predicates), MVCC time-travel, opt-in crash-safe durability (Durability::Sync), and a fast compile-and-publish path (CAS dedup, columnar compression, single-file mmap artifacts). Current limits: indexes are in-memory (rebuilt on open) and there is no concurrency.

Install and distribution

| Target | How | |--------|-----| | Rust (crates.io) | cargo add picovolt | | JavaScript / npm (WebAssembly, browser and Node) | npm install picovolt | | C / Go / Python (native, via the C ABI) | cargo build --release --features capi, then see bindings/ | | In-memory (native, no filesystem) | Database::open_memory(), export with bake_to_bytes() |

PicoVolt runs in the browser through its in-memory backend. Build the WebAssembly package with wasm-pack build --target bundler --release -- --features wasm, then import { Db } from "picovolt" and run SQL with db.query(...). See src/wasm_api.rs for the JavaScript surface.

For native languages, the capi feature builds a shared library exposing a C ABI (include/picovolt.h, src/ffi.rs). The bindings/ directory wraps it for Go (cgo) and Python (ctypes); both return query results as the same JSON shape as the JavaScript binding. The bindings suit embedded use, not a concurrent server's primary store.

All bindings accept positional ? parameters (db.query("... WHERE id = ?", [1])), bound as safely-escaped SQL literals. For a familiar surface, drop-in adapters are provided: a better-sqlite3-style JavaScript API (import Database from "picovolt/sqlite"), a Python DB-API 2.0 module (import picovolt.dbapi2 as sqlite), and the Go database/sql driver (bindings/go/pvsql). Shared limits across all of them: positional ? only, no SQL transactions, no JOINs, and CREATE TABLE takes column names only.

Server mode

An optional HTTP and JSON server reaches the engine over a socket. One dedicated thread owns the database and runs statements serially, while a pool of HTTP worker threads accepts concurrent connections and hands each request to that thread over a channel, so the single-threaded core is unchanged.

cargo build --release --features server
./target/release/picovolt-server --memory --addr 127.0.0.1:8080
curl -s localhost:8080/v1/query -d '{"sql":"SELECT 1 + 1","params":[]}'

Endpoints are POST /v1/query, GET /v1/tx, and GET /v1/health. There is no authentication or TLS, so run it behind a reverse proxy. See src/bin/server.rs.

Extending PicoVolt

There are two extension paths: sandboxed WebAssembly user-defined functions, and native modules built on the public API. Both are documented in docs/EXTENDING.md.

Project

| | | |--|--| | Roadmap | ROADMAP.md | | Contributing | CONTRIBUTING.md | | Code of conduct | CODE_OF_CONDUCT.md | | Changelog | CHANGELOG.md | | Security policy | SECURITY.md |

License

Licensed under the Apache License, Version 2.0. Third-party dependencies are under MIT or Apache-2.0 licenses, and their notices apply to redistributions (see NOTICE).

The optional compliance module is not a license requirement. It is an opt-in helper for applications that want to enforce their own usage policy. Apache-2.0 places no usage restrictions on PicoVolt itself.